You are not logged in. Please login or register.
PunBB Forums → Posts by IcE
Pages 1
Prehaps there is another solution ? Prehaps creating two classes of ips. One proxyclass and one ordinaryip. Say a person without proxy surfs the forum then he'll get an ip in ordinaryip. But if the HTTP_X_FORWARDED_FOR is set then log both the proxyip and the ip that should be the right one.
By logging both ips it will be more clear what is happening. Is there any real problems with logging both ?
It is possible that PunBB i exposed to the same exploit as phpbb was discovered to have. The problem lies in phpbb and punbb(?) blindly thrust in X-Forwarded-For only to be set when being proxied. If this value is set the forum will use this ip as user ip:
For instance if adding the following when making a post
X-Forwarded-For: 1.3.3.7
Would make you a 'leet' person 
I haven't tested if punbb is exposed to this.. but it's worth looking in to.
More info at: http://www.packetstormsecurity.org/0404 … BB208a.txt
Måste ju lägga länk oxå
http://www.lana.nu/forum/
Du har ställt in så att din browser accepterar cookies från forumet då ?
håller med om att Pun är ett fint och bra namn, tycker du ska behålla det. 
date()
t - number of days in the given month; i.e. "28" to "31"
Varför står det att trådar är nya fasten jag läst dom... varit inne i dom, F5:at slängt alla cache osv ??
Pages 1
PunBB Forums → Posts by IcE
Powered by PunBB, supported by Informer Technologies, Inc.
<-- den